OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)
☆2,482Jun 16, 2020Updated 5 years ago
Alternatives and similar repositories for owasp-modsecurity-crs
Users that are interested in owasp-modsecurity-crs are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-base…☆9,626Apr 28, 2026Updated last week
- ModSecurity v3 Nginx Connector☆1,831Feb 6, 2026Updated 2 months ago
- OWASP CRS (Official Repository)☆3,102Updated this week
- High-performance WAF built on the OpenResty stack☆1,319Jan 31, 2024Updated 2 years ago
- NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX☆4,820Nov 8, 2023Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- SQL / SQLI tokenizer parser analyzer☆1,030Oct 4, 2023Updated 2 years ago
- Documentation for the OWASP CRS project☆41Aug 7, 2020Updated 5 years ago
- ModSecurity v3 Apache Connector☆101Sep 14, 2021Updated 4 years ago
- 适用于中小企业的云waf☆619Jan 22, 2018Updated 8 years ago
- Web security protection system based on openresty☆772Mar 30, 2021Updated 5 years ago
- ngx_lua_waf是一个基于lua-nginx-module(openresty)的web应用防火墙☆4,022Mar 17, 2024Updated 2 years ago
- Framework for Testing WAFs (FTW!)☆266May 22, 2023Updated 2 years ago
- 🔥Open source RASP solution☆2,956Oct 2, 2025Updated 7 months ago
- OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…☆5,010Apr 20, 2026Updated 2 weeks ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- lua waf,nginx+lua,openresty,luajit,waf+,cdn,nginx☆1,283Oct 10, 2021Updated 4 years ago
- WAFNinja is a tool which contains two functions to attack Web Application Firewalls.☆825Dec 6, 2017Updated 8 years ago
- 被动式漏洞扫描系统☆868Nov 1, 2017Updated 8 years ago
- Everything about Web Application Firewalls (WAFs) from Security Standpoint! 🔥☆7,458Mar 26, 2026Updated last month
- Source Code Security Audit (源代码安全审计)☆3,190Sep 16, 2022Updated 3 years ago
- 巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。☆3,596Apr 16, 2024Updated 2 years ago
- This project has stopped to maintenance, please to https://github.com/knownsec/pocsuite3 project.☆1,821May 27, 2022Updated 3 years ago
- JXWAF是一款基于AI大模型的Web应用防火墙☆1,205Feb 25, 2026Updated 2 months ago
- ModSecurity status☆33May 27, 2014Updated 11 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- WAF-FLE, ModSecurity Console☆147Oct 1, 2022Updated 3 years ago
- Framework for Testing WAFs (FTW!)☆140Mar 16, 2026Updated last month
- The ZAP by Checkmarx Core project☆15,079Updated this week
- The official ModSecurity Docker images☆132Nov 26, 2022Updated 3 years ago
- w3af: web application attack and audit framework, the open source web vulnerability scanner.☆4,869Feb 22, 2023Updated 3 years ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆6,324Apr 19, 2026Updated 2 weeks ago
- Attack Detection☆1,359Aug 31, 2022Updated 3 years ago
- Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management☆3,116Apr 16, 2021Updated 5 years ago
- Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices☆12,126Apr 28, 2026Updated last week
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- This is a webshell open source project☆10,724Dec 24, 2024Updated last year
- Web Application Security Scanner Framework☆4,021Apr 22, 2026Updated last week
- Next generation remote logging tool for ModSecurity, supporting native and JSON format.☆22Jan 29, 2018Updated 8 years ago
- hihttps是一款完整源码的高性能web应用防火墙,既支持传统WAF的所有功能如SQL注入、XSS、恶意漏洞扫描、密码暴力破解、CC、DDOS等ModSecurity正则规则,又支持无监督机器学习,自主对抗未知攻击。☆575Jun 6, 2025Updated 10 months ago
- Git All the Payloads! A collection of web attack payloads.☆3,938May 15, 2023Updated 2 years ago
- The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala proje…☆2,423Mar 26, 2026Updated last month
- JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool☆2,515Jan 21, 2020Updated 6 years ago